$ rpki-client -vvf rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234302e302f32342d3234203d3e20313431383837.roa File: 3130332e3136332e3234302e302f32342d3234203d3e20313431383837.roa (raw, json) Hash identifier: 5Ssmm5grz5Tl3MtkZw82jMEzuLc9usDz6SBlVHYxN7U= Subject key identifier: 83:D4:87:5B:02:59:71:19:94:86:91:C9:75:F7:69:6B:35:88:9B:8B Certificate issuer: /CN=4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F Certificate serial: 17BB996FBF9DB9B6ADB5119DAAFDE38BB74A2EED Authority key identifier: 4A:CA:AD:0A:28:A6:50:A9:BD:65:B0:A6:E1:90:57:F4:7B:DB:94:2F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234302e302f32342d3234203d3e20313431383837.roa Signing time: Sun 03 May 2026 02:27:40 +0000 ROA not before: Sun 03 May 2026 02:22:40 +0000 ROA not after: Sun 02 May 2027 02:27:40 +0000 asID: 141887 IP address blocks: 103.163.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.crl rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:bb:99:6f:bf:9d:b9:b6:ad:b5:11:9d:aa:fd:e3:8b:b7:4a:2e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F Validity Not Before: May 3 02:22:40 2026 GMT Not After : May 2 02:27:40 2027 GMT Subject: CN=83D4875B02597119948691C975F7696B35889B8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:08:df:54:d6:35:56:a5:07:21:3b:86:23: f6:33:23:a4:0a:02:5d:c0:e3:58:e1:d5:83:32:99: f9:c0:ec:6f:4d:46:e5:29:9c:bf:9e:7f:56:19:4d: c1:58:5d:e3:fe:5d:4e:de:ee:98:ea:62:6f:41:54: 70:84:13:db:03:90:71:c2:fb:d2:4a:c8:5a:73:d2: 83:36:9e:97:8e:94:6e:21:b1:50:8e:59:2f:1c:f0: 05:f5:5f:27:2c:10:67:0b:80:26:e5:fe:4d:39:e1: b8:0b:f8:65:bc:64:4b:88:7b:0d:47:67:d0:5c:e3: c7:d1:dd:56:0b:58:dc:b9:9e:f4:bc:a3:ac:88:22: 35:ca:4c:96:52:d5:12:42:fb:9d:57:f3:8e:e7:b6: 70:28:ec:ed:a5:2d:bd:ba:07:2d:f2:0a:5c:00:70: 0c:c1:c5:4d:8b:75:50:30:3f:94:fd:7b:b7:68:70: f6:f9:d2:9d:83:38:44:4c:c3:10:dd:a7:30:e7:50: 89:fb:00:eb:a3:27:0d:87:e0:01:e2:a1:79:8b:d7: 31:af:a0:99:3c:e9:c3:1d:e6:2a:42:91:52:a1:46: 3c:b9:8f:bf:5a:e0:e1:68:fa:e4:09:f0:ff:32:59: 51:23:3b:25:89:bc:49:1d:d3:ca:58:db:f1:67:64: b0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D4:87:5B:02:59:71:19:94:86:91:C9:75:F7:69:6B:35:88:9B:8B X509v3 Authority Key Identifier: keyid:4A:CA:AD:0A:28:A6:50:A9:BD:65:B0:A6:E1:90:57:F4:7B:DB:94:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4ACAAD0A28A650A9BD65B0A6E19057F47BDB942F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/3130332e3136332e3234302e302f32342d3234203d3e20313431383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.240.0/24 Signature Algorithm: sha256WithRSAEncryption 77:f2:f8:03:c9:f4:a3:bc:ae:b9:c5:9d:c0:1e:8a:33:60:9c: 98:9e:6c:b8:ab:7e:b3:a7:42:2c:a8:21:2a:6d:99:08:28:1c: a3:9e:f4:e6:04:1c:af:bd:58:38:3b:53:f4:27:38:d2:19:1c: ef:99:5f:8c:25:4e:72:1c:e6:c9:81:30:3d:7f:f8:38:29:07: 5c:04:3b:08:02:79:fa:b8:5c:91:bd:e8:67:19:d1:af:82:d9: 60:f4:b3:48:dc:83:e6:d1:57:d2:1b:0f:14:ed:3f:0d:57:28: e2:13:7b:f5:fd:ee:c7:66:0e:0a:cf:80:0a:fa:b8:b6:fe:b7: 95:45:83:09:41:c9:12:06:8d:e1:c2:73:a1:86:66:ca:ae:6d: 77:ab:23:c5:53:16:eb:87:e7:ce:32:e7:41:4e:95:a9:13:81: c8:c5:91:16:00:c8:1e:94:ef:f7:61:92:11:96:9a:98:7b:3a: 39:8d:47:4f:5e:50:d1:56:1f:87:5f:46:ad:64:73:95:e4:1d: f6:3b:bd:ed:8b:76:24:88:8e:2c:c0:3a:12:e5:ca:d6:49:4c: 3b:60:33:be:e9:19:8a:3a:c2:f9:dd:05:01:26:9c:11:ae:d0: 30:31:66:55:77:68:8b:29:a8:0d:56:65:e9:a7:dc:7d:11:bf: 91:b4:b8:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF7uZb7+dubattRGdqv3ji7dKLu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDQUFEMEEyOEE2NTBBOUJENjVCMEE2RTE5MDU3RjQ3 QkRCOTQyRjAeFw0yNjA1MDMwMjIyNDBaFw0yNzA1MDIwMjI3NDBaMDMxMTAvBgNV BAMTKDgzRDQ4NzVCMDI1OTcxMTk5NDg2OTFDOTc1Rjc2OTZCMzU4ODlCOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGzAjfVNY1VqUHITuGI/YzI6QK Al3A41jh1YMymfnA7G9NRuUpnL+ef1YZTcFYXeP+XU7e7pjqYm9BVHCEE9sDkHHC +9JKyFpz0oM2npeOlG4hsVCOWS8c8AX1XycsEGcLgCbl/k054bgL+GW8ZEuIew1H Z9Bc48fR3VYLWNy5nvS8o6yIIjXKTJZS1RJC+51X847ntnAo7O2lLb26By3yClwA cAzBxU2LdVAwP5T9e7docPb50p2DOERMwxDdpzDnUIn7AOujJw2H4AHioXmL1zGv oJk86cMd5ipCkVKhRjy5j79a4OFo+uQJ8P8yWVEjOyWJvEkd08pY2/FnZLCBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUg9SHWwJZcRmUhpHJdfdpazWIm4swHwYDVR0j BBgwFoAUSsqtCiimUKm9ZbCm4ZBX9HvblC8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2M1Yjc4NWQtODMwMy00NWM1LTlhNTgtZWMxMjg4NzQwODY2LzAvNEFDQUFEMEEy OEE2NTBBOUJENjVCMEE2RTE5MDU3RjQ3QkRCOTQyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QUNBQUQwQTI4QTY1MEE5QkQ2NUIwQTZFMTkwNTdGNDdCREI5 NDJGLmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNjNWI3ODVkLTgzMDMtNDVjNS05 YTU4LWVjMTI4ODc0MDg2Ni8wLzMxMzAzMzJlMzEzNjMzMmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno/AwDQYJ KoZIhvcNAQELBQADggEBAHfy+APJ9KO8rrnFncAeijNgnJiebLirfrOnQiyoISpt mQgoHKOe9OYEHK+9WDg7U/QnONIZHO+ZX4wlTnIc5smBMD1/+DgpB1wEOwgCefq4 XJG96GcZ0a+C2WD0s0jcg+bRV9IbDxTtPw1XKOITe/X97sdmDgrPgAr6uLb+t5VF gwlByRIGjeHCc6GGZsqubXerI8VTFuuH584y50FOlakTgcjFkRYAyB6U7/dhkhGW mph7OjmNR09eUNFWH4dfRq1kc5XkHfY7ve2LdiSIjizAOhLlytZJTDtgM77pGYo6 wvndBQEmnBGu0DAxZlV3aIspqA1WZemn3H0Rv5G0uNU= -----END CERTIFICATE-----Generated at Wed May 13 15:06:54 2026 by rpki-client